hi I've noticed that no one seems to be signing drpms. Is there a reason for that ? or is it just down to inconvenient ( its a bit messy needing to get drpms into secure-box type environments ), and of academic interest ( in that the re-assembled rpm will be signed, and need to go through a verify process ). - KB